search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Changes to update Tomato RAF.
[tomato.git] / release / src / router / dnscrypt / src / libevent / bufferevent_openssl.c
blobbdc363e5de43cd4ac2cc6e6bdeb8108cd8ce9374
1 /*
2 * Copyright (c) 2009-2012 Niels Provos and Nick Mathewson
3 *
4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions
6 * are met:
7 * 1. Redistributions of source code must retain the above copyright
8 * notice, this list of conditions and the following disclaimer.
9 * 2. Redistributions in binary form must reproduce the above copyright
10 * notice, this list of conditions and the following disclaimer in the
11 * documentation and/or other materials provided with the distribution.
12 * 3. The name of the author may not be used to endorse or promote products
13 * derived from this software without specific prior written permission.
14 *
15 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
16 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
17 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
18 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
19 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
20 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
21 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
22 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
23 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
24 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
25 */
26
27 #include <sys/types.h>
28
29 #include "event2/event-config.h"
30
31 #ifdef _EVENT_HAVE_SYS_TIME_H
32 #include <sys/time.h>
33 #endif
34
35 #include <errno.h>
36 #include <stdio.h>
37 #include <stdlib.h>
38 #include <string.h>
39 #ifdef _EVENT_HAVE_STDARG_H
40 #include <stdarg.h>
41 #endif
42 #ifdef _EVENT_HAVE_UNISTD_H
43 #include <unistd.h>
44 #endif
45
46 #ifdef WIN32
47 #include <winsock2.h>
48 #endif
49
50 #include "event2/bufferevent.h"
51 #include "event2/bufferevent_struct.h"
52 #include "event2/bufferevent_ssl.h"
53 #include "event2/buffer.h"
54 #include "event2/event.h"
55
56 #include "mm-internal.h"
57 #include "bufferevent-internal.h"
58 #include "log-internal.h"
59
60 #include <openssl/bio.h>
61 #include <openssl/ssl.h>
62 #include <openssl/err.h>
63
64 /*
65 * Define an OpenSSL bio that targets a bufferevent.
66 */
67
68 /* --------------------
69 A BIO is an OpenSSL abstraction that handles reading and writing data. The
70 library will happily speak SSL over anything that implements a BIO
71 interface.
72
73 Here we define a BIO implementation that directs its output to a
74 bufferevent. We'll want to use this only when none of OpenSSL's built-in
75 IO mechanisms work for us.
76 -------------------- */
77
78 /* every BIO type needs its own integer type value. */
79 #define BIO_TYPE_LIBEVENT 57
80 /* ???? Arguably, we should set BIO_TYPE_FILTER or BIO_TYPE_SOURCE_SINK on
81 * this. */
82
83 #if 0
84 static void
85 print_err(int val)
86 {
87 int err;
88 printf("Error was %d\n", val);
89
90 while ((err = ERR_get_error()))x {
91 const char *msg = (const char*)ERR_reason_error_string(err);
92 const char *lib = (const char*)ERR_lib_error_string(err);
93 const char *func = (const char*)ERR_func_error_string(err);
94
95 printf("%s in %s %s\n", msg, lib, func);
96 }
97 }
98 #else
99 #define print_err(v) ((void)0)
100 #endif
101
102 /* Called to initialize a new BIO */
103 static int
104 bio_bufferevent_new(BIO *b)
105 {
106 b->init = 0;
107 b->num = -1;
108 b->ptr = NULL; /* We'll be putting the bufferevent in this field.*/
109 b->flags = 0;
110 return 1;
111 }
112
113 /* Called to uninitialize the BIO. */
114 static int
115 bio_bufferevent_free(BIO *b)
116 {
117 if (!b)
118 return 0;
119 if (b->shutdown) {
120 if (b->init && b->ptr)
121 bufferevent_free(b->ptr);
122 b->init = 0;
123 b->flags = 0;
124 b->ptr = NULL;
125 }
126 return 1;
127 }
128
129 /* Called to extract data from the BIO. */
130 static int
131 bio_bufferevent_read(BIO *b, char *out, int outlen)
132 {
133 int r = 0;
134 struct evbuffer *input;
135
136 BIO_clear_retry_flags(b);
137
138 if (!out)
139 return 0;
140 if (!b->ptr)
141 return -1;
142
143 input = bufferevent_get_input(b->ptr);
144 if (evbuffer_get_length(input) == 0) {
145 /* If there's no data to read, say so. */
146 BIO_set_retry_read(b);
147 return -1;
148 } else {
149 r = evbuffer_remove(input, out, outlen);
150 }
151
152 return r;
153 }
154
155 /* Called to write data info the BIO */
156 static int
157 bio_bufferevent_write(BIO *b, const char *in, int inlen)
158 {
159 struct bufferevent *bufev = b->ptr;
160 struct evbuffer *output;
161 size_t outlen;
162
163 BIO_clear_retry_flags(b);
164
165 if (!b->ptr)
166 return -1;
167
168 output = bufferevent_get_output(bufev);
169 outlen = evbuffer_get_length(output);
170
171 /* Copy only as much data onto the output buffer as can fit under the
172 * high-water mark. */
173 if (bufev->wm_write.high && bufev->wm_write.high <= (outlen+inlen)) {
174 if (bufev->wm_write.high <= outlen) {
175 /* If no data can fit, we'll need to retry later. */
176 BIO_set_retry_write(b);
177 return -1;
178 }
179 inlen = bufev->wm_write.high - outlen;
180 }
181
182 EVUTIL_ASSERT(inlen > 0);
183 evbuffer_add(output, in, inlen);
184 return inlen;
185 }
186
187 /* Called to handle various requests */
188 static long
189 bio_bufferevent_ctrl(BIO *b, int cmd, long num, void *ptr)
190 {
191 struct bufferevent *bufev = b->ptr;
192 long ret = 1;
193
194 switch (cmd) {
195 case BIO_CTRL_GET_CLOSE:
196 ret = b->shutdown;
197 break;
198 case BIO_CTRL_SET_CLOSE:
199 b->shutdown = (int)num;
200 break;
201 case BIO_CTRL_PENDING:
202 ret = evbuffer_get_length(bufferevent_get_input(bufev)) != 0;
203 break;
204 case BIO_CTRL_WPENDING:
205 ret = evbuffer_get_length(bufferevent_get_output(bufev)) != 0;
206 break;
207 /* XXXX These two are given a special-case treatment because
208 * of cargo-cultism. I should come up with a better reason. */
209 case BIO_CTRL_DUP:
210 case BIO_CTRL_FLUSH:
211 ret = 1;
212 break;
213 default:
214 ret = 0;
215 break;
216 }
217 return ret;
218 }
219
220 /* Called to write a string to the BIO */
221 static int
222 bio_bufferevent_puts(BIO *b, const char *s)
223 {
224 return bio_bufferevent_write(b, s, strlen(s));
225 }
226
227 /* Method table for the bufferevent BIO */
228 static BIO_METHOD methods_bufferevent = {
229 BIO_TYPE_LIBEVENT, "bufferevent",
230 bio_bufferevent_write,
231 bio_bufferevent_read,
232 bio_bufferevent_puts,
233 NULL /* bio_bufferevent_gets */,
234 bio_bufferevent_ctrl,
235 bio_bufferevent_new,
236 bio_bufferevent_free,
237 NULL /* callback_ctrl */,
238 };
239
240 /* Return the method table for the bufferevents BIO */
241 static BIO_METHOD *
242 BIO_s_bufferevent(void)
243 {
244 return &methods_bufferevent;
245 }
246
247 /* Create a new BIO to wrap communication around a bufferevent. If close_flag
248 * is true, the bufferevent will be freed when the BIO is closed. */
249 static BIO *
250 BIO_new_bufferevent(struct bufferevent *bufferevent, int close_flag)
251 {
252 BIO *result;
253 if (!bufferevent)
254 return NULL;
255 if (!(result = BIO_new(BIO_s_bufferevent())))
256 return NULL;
257 result->init = 1;
258 result->ptr = bufferevent;
259 result->shutdown = close_flag ? 1 : 0;
260 return result;
261 }
262
263 /* --------------------
264 Now, here's the OpenSSL-based implementation of bufferevent.
265
266 The implementation comes in two flavors: one that connects its SSL object
267 to an underlying bufferevent using a BIO_bufferevent, and one that has the
268 SSL object connect to a socket directly. The latter should generally be
269 faster, except on Windows, where your best bet is using a
270 bufferevent_async.
271
272 (OpenSSL supports many other BIO types, too. But we can't use any unless
273 we have a good way to get notified when they become readable/writable.)
274 -------------------- */
275
276 struct bio_data_counts {
277 unsigned long n_written;
278 unsigned long n_read;
279 };
280
281 struct bufferevent_openssl {
282 /* Shared fields with common bufferevent implementation code.
283 If we were set up with an underlying bufferevent, we use the
284 events here as timers only. If we have an SSL, then we use
285 the events as socket events.
286 */
287 struct bufferevent_private bev;
288 /* An underlying bufferevent that we're directing our output to.
289 If it's NULL, then we're connected to an fd, not an evbuffer. */
290 struct bufferevent *underlying;
291 /* The SSL object doing our encryption. */
292 SSL *ssl;
293
294 /* A callback that's invoked when data arrives on our outbuf so we
295 know to write data to the SSL. */
296 struct evbuffer_cb_entry *outbuf_cb;
297
298 /* A count of how much data the bios have read/written total. Used
299 for rate-limiting. */
300 struct bio_data_counts counts;
301
302 /* If this value is greater than 0, then the last SSL_write blocked,
303 * and we need to try it again with this many bytes. */
304 ev_ssize_t last_write;
305
306 #define NUM_ERRORS 3
307 ev_uint32_t errors[NUM_ERRORS];
308
309 /* When we next get available space, we should say "read" instead of
310 "write". This can happen if there's a renegotiation during a read
311 operation. */
312 unsigned read_blocked_on_write : 1;
313 /* When we next get data, we should say "write" instead of "read". */
314 unsigned write_blocked_on_read : 1;
315 /* XXX */
316 unsigned allow_dirty_shutdown : 1;
317 /* XXXX */
318 unsigned fd_is_set : 1;
319 /* XXX */
320 unsigned n_errors : 2;
321
322 /* Are we currently connecting, accepting, or doing IO? */
323 unsigned state : 2;
324 };
325
326 static int be_openssl_enable(struct bufferevent *, short);
327 static int be_openssl_disable(struct bufferevent *, short);
328 static void be_openssl_destruct(struct bufferevent *);
329 static int be_openssl_adj_timeouts(struct bufferevent *);
330 static int be_openssl_flush(struct bufferevent *bufev,
331 short iotype, enum bufferevent_flush_mode mode);
332 static int be_openssl_ctrl(struct bufferevent *, enum bufferevent_ctrl_op, union bufferevent_ctrl_data *);
333
334 const struct bufferevent_ops bufferevent_ops_openssl = {
335 "ssl",
336 evutil_offsetof(struct bufferevent_openssl, bev.bev),
337 be_openssl_enable,
338 be_openssl_disable,
339 be_openssl_destruct,
340 be_openssl_adj_timeouts,
341 be_openssl_flush,
342 be_openssl_ctrl,
343 };
344
345 /* Given a bufferevent, return a pointer to the bufferevent_openssl that
346 * contains it, if any. */
347 static inline struct bufferevent_openssl *
348 upcast(struct bufferevent *bev)
349 {
350 struct bufferevent_openssl *bev_o;
351 if (bev->be_ops != &bufferevent_ops_openssl)
352 return NULL;
353 bev_o = (void*)( ((char*)bev) -
354 evutil_offsetof(struct bufferevent_openssl, bev.bev));
355 EVUTIL_ASSERT(bev_o->bev.bev.be_ops == &bufferevent_ops_openssl);
356 return bev_o;
357 }
358
359 static inline void
360 put_error(struct bufferevent_openssl *bev_ssl, unsigned long err)
361 {
362 if (bev_ssl->n_errors == NUM_ERRORS)
363 return;
364 /* The error type according to openssl is "unsigned long", but
365 openssl never uses more than 32 bits of it. It _can't_ use more
366 than 32 bits of it, since it needs to report errors on systems
367 where long is only 32 bits.
368 */
369 bev_ssl->errors[bev_ssl->n_errors++] = (ev_uint32_t) err;
370 }
371
372 /* Have the base communications channel (either the underlying bufferevent or
373 * ev_read and ev_write) start reading. Take the read-blocked-on-write flag
374 * into account. */
375 static int
376 start_reading(struct bufferevent_openssl *bev_ssl)
377 {
378 if (bev_ssl->underlying) {
379 bufferevent_unsuspend_read(bev_ssl->underlying,
380 BEV_SUSPEND_FILT_READ);
381 return 0;
382 } else {
383 struct bufferevent *bev = &bev_ssl->bev.bev;
384 int r;
385 r = _bufferevent_add_event(&bev->ev_read, &bev->timeout_read);
386 if (r == 0 && bev_ssl->read_blocked_on_write)
387 r = _bufferevent_add_event(&bev->ev_write,
388 &bev->timeout_write);
389 return r;
390 }
391 }
392
393 /* Have the base communications channel (either the underlying bufferevent or
394 * ev_read and ev_write) start writing. Take the write-blocked-on-read flag
395 * into account. */
396 static int
397 start_writing(struct bufferevent_openssl *bev_ssl)
398 {
399 int r = 0;
400 if (bev_ssl->underlying) {
401 ;
402 } else {
403 struct bufferevent *bev = &bev_ssl->bev.bev;
404 r = _bufferevent_add_event(&bev->ev_write, &bev->timeout_write);
405 if (!r && bev_ssl->write_blocked_on_read)
406 r = _bufferevent_add_event(&bev->ev_read,
407 &bev->timeout_read);
408 }
409 return r;
410 }
411
412 static void
413 stop_reading(struct bufferevent_openssl *bev_ssl)
414 {
415 if (bev_ssl->write_blocked_on_read)
416 return;
417 if (bev_ssl->underlying) {
418 bufferevent_suspend_read(bev_ssl->underlying,
419 BEV_SUSPEND_FILT_READ);
420 } else {
421 struct bufferevent *bev = &bev_ssl->bev.bev;
422 event_del(&bev->ev_read);
423 }
424 }
425
426 static void
427 stop_writing(struct bufferevent_openssl *bev_ssl)
428 {
429 if (bev_ssl->read_blocked_on_write)
430 return;
431 if (bev_ssl->underlying) {
432 ;
433 } else {
434 struct bufferevent *bev = &bev_ssl->bev.bev;
435 event_del(&bev->ev_write);
436 }
437 }
438
439 static int
440 set_rbow(struct bufferevent_openssl *bev_ssl)
441 {
442 if (!bev_ssl->underlying)
443 stop_reading(bev_ssl);
444 bev_ssl->read_blocked_on_write = 1;
445 return start_writing(bev_ssl);
446 }
447
448 static int
449 set_wbor(struct bufferevent_openssl *bev_ssl)
450 {
451 if (!bev_ssl->underlying)
452 stop_writing(bev_ssl);
453 bev_ssl->write_blocked_on_read = 1;
454 return start_reading(bev_ssl);
455 }
456
457 static int
458 clear_rbow(struct bufferevent_openssl *bev_ssl)
459 {
460 struct bufferevent *bev = &bev_ssl->bev.bev;
461 int r = 0;
462 bev_ssl->read_blocked_on_write = 0;
463 if (!(bev->enabled & EV_WRITE))
464 stop_writing(bev_ssl);
465 if (bev->enabled & EV_READ)
466 r = start_reading(bev_ssl);
467 return r;
468 }
469
470
471 static int
472 clear_wbor(struct bufferevent_openssl *bev_ssl)
473 {
474 struct bufferevent *bev = &bev_ssl->bev.bev;
475 int r = 0;
476 bev_ssl->write_blocked_on_read = 0;
477 if (!(bev->enabled & EV_READ))
478 stop_reading(bev_ssl);
479 if (bev->enabled & EV_WRITE)
480 r = start_writing(bev_ssl);
481 return r;
482 }
483
484 static void
485 conn_closed(struct bufferevent_openssl *bev_ssl, int errcode, int ret)
486 {
487 int event = BEV_EVENT_ERROR;
488 int dirty_shutdown = 0;
489 unsigned long err;
490
491 switch (errcode) {
492 case SSL_ERROR_ZERO_RETURN:
493 /* Possibly a clean shutdown. */
494 if (SSL_get_shutdown(bev_ssl->ssl) & SSL_RECEIVED_SHUTDOWN)
495 event = BEV_EVENT_EOF;
496 else
497 dirty_shutdown = 1;
498 break;
499 case SSL_ERROR_SYSCALL:
500 /* IO error; possibly a dirty shutdown. */
501 if (ret == 0 && ERR_peek_error() == 0)
502 dirty_shutdown = 1;
503 break;
504 case SSL_ERROR_SSL:
505 /* Protocol error. */
506 break;
507 case SSL_ERROR_WANT_X509_LOOKUP:
508 /* XXXX handle this. */
509 break;
510 case SSL_ERROR_NONE:
511 case SSL_ERROR_WANT_READ:
512 case SSL_ERROR_WANT_WRITE:
513 case SSL_ERROR_WANT_CONNECT:
514 case SSL_ERROR_WANT_ACCEPT:
515 default:
516 /* should be impossible; treat as normal error. */
517 event_warnx("BUG: Unexpected OpenSSL error code %d", errcode);
518 break;
519 }
520
521 while ((err = ERR_get_error())) {
522 put_error(bev_ssl, err);
523 }
524
525 if (dirty_shutdown && bev_ssl->allow_dirty_shutdown)
526 event = BEV_EVENT_EOF;
527
528 stop_reading(bev_ssl);
529 stop_writing(bev_ssl);
530
531 _bufferevent_run_eventcb(&bev_ssl->bev.bev, event);
532 }
533
534 static void
535 init_bio_counts(struct bufferevent_openssl *bev_ssl)
536 {
537 bev_ssl->counts.n_written =
538 BIO_number_written(SSL_get_wbio(bev_ssl->ssl));
539 bev_ssl->counts.n_read =
540 BIO_number_read(SSL_get_rbio(bev_ssl->ssl));
541 }
542
543 static inline void
544 decrement_buckets(struct bufferevent_openssl *bev_ssl)
545 {
546 unsigned long num_w = BIO_number_written(SSL_get_wbio(bev_ssl->ssl));
547 unsigned long num_r = BIO_number_read(SSL_get_rbio(bev_ssl->ssl));
548 /* These next two subtractions can wrap around. That's okay. */
549 unsigned long w = num_w - bev_ssl->counts.n_written;
550 unsigned long r = num_r - bev_ssl->counts.n_read;
551 if (w)
552 _bufferevent_decrement_write_buckets(&bev_ssl->bev, w);
553 if (r)
554 _bufferevent_decrement_read_buckets(&bev_ssl->bev, r);
555 bev_ssl->counts.n_written = num_w;
556 bev_ssl->counts.n_read = num_r;
557 }
558
559 /* returns -1 on internal error, 0 on stall, 1 on progress */
560 static int
561 do_read(struct bufferevent_openssl *bev_ssl, int n_to_read)
562 {
563 /* Requires lock */
564 struct bufferevent *bev = &bev_ssl->bev.bev;
565 struct evbuffer *input = bev->input;
566 int r, n, i, n_used = 0, blocked = 0, atmost;
567 struct evbuffer_iovec space[2];
568
569 atmost = _bufferevent_get_read_max(&bev_ssl->bev);
570 if (n_to_read > atmost)
571 n_to_read = atmost;
572
573 n = evbuffer_reserve_space(input, n_to_read, space, 2);
574 if (n < 0)
575 return -1;
576
577 for (i=0; i<n; ++i) {
578 if (bev_ssl->bev.read_suspended)
579 break;
580 r = SSL_read(bev_ssl->ssl, space[i].iov_base, space[i].iov_len);
581 if (r>0) {
582 if (bev_ssl->read_blocked_on_write)
583 if (clear_rbow(bev_ssl) < 0)
584 return -1;
585 ++n_used;
586 space[i].iov_len = r;
587 decrement_buckets(bev_ssl);
588 } else {
589 int err = SSL_get_error(bev_ssl->ssl, r);
590 print_err(err);
591 switch (err) {
592 case SSL_ERROR_WANT_READ:
593 /* Can't read until underlying has more data. */
594 if (bev_ssl->read_blocked_on_write)
595 if (clear_rbow(bev_ssl) < 0)
596 return -1;
597 break;
598 case SSL_ERROR_WANT_WRITE:
599 /* This read operation requires a write, and the
600 * underlying is full */
601 if (!bev_ssl->read_blocked_on_write)
602 if (set_rbow(bev_ssl) < 0)
603 return -1;
604 break;
605 default:
606 conn_closed(bev_ssl, err, r);
607 break;
608 }
609 blocked = 1;
610 break; /* out of the loop */
611 }
612 }
613
614 if (n_used) {
615 evbuffer_commit_space(input, space, n_used);
616 if (bev_ssl->underlying)
617 BEV_RESET_GENERIC_READ_TIMEOUT(bev);
618 }
619
620 return blocked ? 0 : 1;
621 }
622
623 static int
624 do_write(struct bufferevent_openssl *bev_ssl, int atmost)
625 {
626 int i, r, n, n_written = 0, blocked=0;
627 struct bufferevent *bev = &bev_ssl->bev.bev;
628 struct evbuffer *output = bev->output;
629 struct evbuffer_iovec space[8];
630
631 if (bev_ssl->last_write > 0)
632 atmost = bev_ssl->last_write;
633 else
634 atmost = _bufferevent_get_write_max(&bev_ssl->bev);
635
636 n = evbuffer_peek(output, atmost, NULL, space, 8);
637 if (n < 0)
638 return -1;
639
640 if (n > 8)
641 n = 8;
642 for (i=0; i < n; ++i) {
643 if (bev_ssl->bev.write_suspended)
644 break;
645
646 /* SSL_write will (reasonably) return 0 if we tell it to
647 send 0 data. Skip this case so we don't interpret the
648 result as an error */
649 if (space[i].iov_len == 0)
650 continue;
651
652 r = SSL_write(bev_ssl->ssl, space[i].iov_base,
653 space[i].iov_len);
654 if (r > 0) {
655 if (bev_ssl->write_blocked_on_read)
656 if (clear_wbor(bev_ssl) < 0)
657 return -1;
658 n_written += r;
659 bev_ssl->last_write = -1;
660 decrement_buckets(bev_ssl);
661 } else {
662 int err = SSL_get_error(bev_ssl->ssl, r);
663 print_err(err);
664 switch (err) {
665 case SSL_ERROR_WANT_WRITE:
666 /* Can't read until underlying has more data. */
667 if (bev_ssl->write_blocked_on_read)
668 if (clear_wbor(bev_ssl) < 0)
669 return -1;
670 bev_ssl->last_write = space[i].iov_len;
671 break;
672 case SSL_ERROR_WANT_READ:
673 /* This read operation requires a write, and the
674 * underlying is full */
675 if (!bev_ssl->write_blocked_on_read)
676 if (set_wbor(bev_ssl) < 0)
677 return -1;
678 bev_ssl->last_write = space[i].iov_len;
679 break;
680 default:
681 conn_closed(bev_ssl, err, r);
682 bev_ssl->last_write = -1;
683 break;
684 }
685 blocked = 1;
686 break;
687 }
688 }
689 if (n_written) {
690 evbuffer_drain(output, n_written);
691 if (bev_ssl->underlying)
692 BEV_RESET_GENERIC_WRITE_TIMEOUT(bev);
693
694 if (evbuffer_get_length(output) <= bev->wm_write.low)
695 _bufferevent_run_writecb(bev);
696 }
697 return blocked ? 0 : 1;
698 }
699
700 #define WRITE_FRAME 15000
701
702 #define READ_DEFAULT 4096
703
704 /* Try to figure out how many bytes to read; return 0 if we shouldn't be
705 * reading. */
706 static int
707 bytes_to_read(struct bufferevent_openssl *bev)
708 {
709 struct evbuffer *input = bev->bev.bev.input;
710 struct event_watermark *wm = &bev->bev.bev.wm_read;
711 int result = READ_DEFAULT;
712 ev_ssize_t limit;
713 /* XXX 99% of this is generic code that nearly all bufferevents will
714 * want. */
715
716 if (bev->write_blocked_on_read) {
717 return 0;
718 }
719
720 if (! (bev->bev.bev.enabled & EV_READ)) {
721 return 0;
722 }
723
724 if (bev->bev.read_suspended) {
725 return 0;
726 }
727
728 if (wm->high) {
729 if (evbuffer_get_length(input) >= wm->high) {
730 return 0;
731 }
732
733 result = wm->high - evbuffer_get_length(input);
734 } else {
735 result = READ_DEFAULT;
736 }
737
738 /* Respect the rate limit */
739 limit = _bufferevent_get_read_max(&bev->bev);
740 if (result > limit) {
741 result = limit;
742 }
743
744 return result;
745 }
746
747
748 /* Things look readable. If write is blocked on read, write till it isn't.
749 * Read from the underlying buffer until we block or we hit our high-water
750 * mark.
751 */
752 static void
753 consider_reading(struct bufferevent_openssl *bev_ssl)
754 {
755 int r;
756 int n_to_read;
757 int read_data = 0;
758
759 while (bev_ssl->write_blocked_on_read) {
760 r = do_write(bev_ssl, WRITE_FRAME);
761 if (r <= 0)
762 break;
763 }
764 if (bev_ssl->write_blocked_on_read)
765 return;
766
767 n_to_read = bytes_to_read(bev_ssl);
768
769 while (n_to_read) {
770 if (do_read(bev_ssl, n_to_read) <= 0)
771 break;
772
773 read_data = 1;
774
775 /* Read all pending data. This won't hit the network
776 * again, and will (most importantly) put us in a state
777 * where we don't need to read anything else until the
778 * socket is readable again. It'll potentially make us
779 * overrun our read high-watermark (somewhat
780 * regrettable). The damage to the rate-limit has
781 * already been done, since OpenSSL went and read a
782 * whole SSL record anyway. */
783 n_to_read = SSL_pending(bev_ssl->ssl);
784
785 /* XXX This if statement is actually a bad bug, added to avoid
786 * XXX a worse bug.
787 *
788 * The bad bug: It can potentially cause resource unfairness
789 * by reading too much data from the underlying bufferevent;
790 * it can potentially cause read looping if the underlying
791 * bufferevent is a bufferevent_pair and deferred callbacks
792 * aren't used.
793 *
794 * The worse bug: If we didn't do this, then we would
795 * potentially not read any more from bev_ssl->underlying
796 * until more data arrived there, which could lead to us
797 * waiting forever.
798 */
799 if (!n_to_read && bev_ssl->underlying)
800 n_to_read = bytes_to_read(bev_ssl);
801 }
802
803 if (read_data == 1) {
804 struct bufferevent *bev = &bev_ssl->bev.bev;
805 struct evbuffer *input = bev->input;
806
807 if (evbuffer_get_length(input) >= bev->wm_read.low) {
808 _bufferevent_run_readcb(bev);
809 }
810 }
811
812 if (!bev_ssl->underlying) {
813 /* Should be redundant, but let's avoid busy-looping */
814 if (bev_ssl->bev.read_suspended ||
815 !(bev_ssl->bev.bev.enabled & EV_READ)) {
816 event_del(&bev_ssl->bev.bev.ev_read);
817 }
818 }
819 }
820
821 static void
822 consider_writing(struct bufferevent_openssl *bev_ssl)
823 {
824 int r;
825 struct evbuffer *output = bev_ssl->bev.bev.output;
826 struct evbuffer *target = NULL;
827 struct event_watermark *wm = NULL;
828
829 while (bev_ssl->read_blocked_on_write) {
830 r = do_read(bev_ssl, 1024); /* XXXX 1024 is a hack */
831 if (r <= 0)
832 break;
833 else {
834 struct bufferevent *bev = &bev_ssl->bev.bev;
835 struct evbuffer *input = bev->input;
836
837 if (evbuffer_get_length(input) >= bev->wm_read.low) {
838 _bufferevent_run_readcb(bev);
839 }
840 }
841 }
842 if (bev_ssl->read_blocked_on_write)
843 return;
844 if (bev_ssl->underlying) {
845 target = bev_ssl->underlying->output;
846 wm = &bev_ssl->underlying->wm_write;
847 }
848 while ((bev_ssl->bev.bev.enabled & EV_WRITE) &&
849 (! bev_ssl->bev.write_suspended) &&
850 evbuffer_get_length(output) &&
851 (!target || (! wm->high || evbuffer_get_length(target) < wm->high))) {
852 int n_to_write;
853 if (wm && wm->high)
854 n_to_write = wm->high - evbuffer_get_length(target);
855 else
856 n_to_write = WRITE_FRAME;
857 r = do_write(bev_ssl, n_to_write);
858 if (r <= 0)
859 break;
860 }
861
862 if (!bev_ssl->underlying) {
863 if (evbuffer_get_length(output) == 0) {
864 event_del(&bev_ssl->bev.bev.ev_write);
865 } else if (bev_ssl->bev.write_suspended ||
866 !(bev_ssl->bev.bev.enabled & EV_WRITE)) {
867 /* Should be redundant, but let's avoid busy-looping */
868 event_del(&bev_ssl->bev.bev.ev_write);
869 }
870 }
871 }
872
873 static void
874 be_openssl_readcb(struct bufferevent *bev_base, void *ctx)
875 {
876 struct bufferevent_openssl *bev_ssl = ctx;
877 consider_reading(bev_ssl);
878 }
879
880 static void
881 be_openssl_writecb(struct bufferevent *bev_base, void *ctx)
882 {
883 struct bufferevent_openssl *bev_ssl = ctx;
884 consider_writing(bev_ssl);
885 }
886
887 static void
888 be_openssl_eventcb(struct bufferevent *bev_base, short what, void *ctx)
889 {
890 struct bufferevent_openssl *bev_ssl = ctx;
891 int event = 0;
892
893 if (what & BEV_EVENT_EOF) {
894 if (bev_ssl->allow_dirty_shutdown)
895 event = BEV_EVENT_EOF;
896 else
897 event = BEV_EVENT_ERROR;
898 } else if (what & BEV_EVENT_TIMEOUT) {
899 /* We sure didn't set this. Propagate it to the user. */
900 event = what;
901 } else if (what & BEV_EVENT_ERROR) {
902 /* An error occurred on the connection. Propagate it to the user. */
903 event = what;
904 } else if (what & BEV_EVENT_CONNECTED) {
905 /* Ignore it. We're saying SSL_connect() already, which will
906 eat it. */
907 }
908 if (event)
909 _bufferevent_run_eventcb(&bev_ssl->bev.bev, event);
910 }
911
912 static void
913 be_openssl_readeventcb(evutil_socket_t fd, short what, void *ptr)
914 {
915 struct bufferevent_openssl *bev_ssl = ptr;
916 _bufferevent_incref_and_lock(&bev_ssl->bev.bev);
917 if (what & EV_TIMEOUT) {
918 _bufferevent_run_eventcb(&bev_ssl->bev.bev,
919 BEV_EVENT_TIMEOUT|BEV_EVENT_READING);
920 } else
921 consider_reading(bev_ssl);
922 _bufferevent_decref_and_unlock(&bev_ssl->bev.bev);
923 }
924
925 static void
926 be_openssl_writeeventcb(evutil_socket_t fd, short what, void *ptr)
927 {
928 struct bufferevent_openssl *bev_ssl = ptr;
929 _bufferevent_incref_and_lock(&bev_ssl->bev.bev);
930 if (what & EV_TIMEOUT) {
931 _bufferevent_run_eventcb(&bev_ssl->bev.bev,
932 BEV_EVENT_TIMEOUT|BEV_EVENT_WRITING);
933 }
934 consider_writing(bev_ssl);
935 _bufferevent_decref_and_unlock(&bev_ssl->bev.bev);
936 }
937
938 static int
939 set_open_callbacks(struct bufferevent_openssl *bev_ssl, evutil_socket_t fd)
940 {
941 if (bev_ssl->underlying) {
942 bufferevent_setcb(bev_ssl->underlying,
943 be_openssl_readcb, be_openssl_writecb, be_openssl_eventcb,
944 bev_ssl);
945 return 0;
946 } else {
947 struct bufferevent *bev = &bev_ssl->bev.bev;
948 int rpending=0, wpending=0, r1=0, r2=0;
949 if (fd < 0 && bev_ssl->fd_is_set)
950 fd = event_get_fd(&bev->ev_read);
951 if (bev_ssl->fd_is_set) {
952 rpending = event_pending(&bev->ev_read, EV_READ, NULL);
953 wpending = event_pending(&bev->ev_write, EV_WRITE, NULL);
954 event_del(&bev->ev_read);
955 event_del(&bev->ev_write);
956 }
957 event_assign(&bev->ev_read, bev->ev_base, fd,
958 EV_READ|EV_PERSIST, be_openssl_readeventcb, bev_ssl);
959 event_assign(&bev->ev_write, bev->ev_base, fd,
960 EV_WRITE|EV_PERSIST, be_openssl_writeeventcb, bev_ssl);
961 if (rpending)
962 r1 = _bufferevent_add_event(&bev->ev_read, &bev->timeout_read);
963 if (wpending)
964 r2 = _bufferevent_add_event(&bev->ev_write, &bev->timeout_write);
965 if (fd >= 0) {
966 bev_ssl->fd_is_set = 1;
967 }
968 return (r1<0 || r2<0) ? -1 : 0;
969 }
970 }
971
972 static int
973 do_handshake(struct bufferevent_openssl *bev_ssl)
974 {
975 int r;
976
977 switch (bev_ssl->state) {
978 default:
979 case BUFFEREVENT_SSL_OPEN:
980 EVUTIL_ASSERT(0);
981 return -1;
982 case BUFFEREVENT_SSL_CONNECTING:
983 case BUFFEREVENT_SSL_ACCEPTING:
984 r = SSL_do_handshake(bev_ssl->ssl);
985 break;
986 }
987 decrement_buckets(bev_ssl);
988
989 if (r==1) {
990 /* We're done! */
991 bev_ssl->state = BUFFEREVENT_SSL_OPEN;
992 set_open_callbacks(bev_ssl, -1); /* XXXX handle failure */
993 /* Call do_read and do_write as needed */
994 bufferevent_enable(&bev_ssl->bev.bev, bev_ssl->bev.bev.enabled);
995 _bufferevent_run_eventcb(&bev_ssl->bev.bev,
996 BEV_EVENT_CONNECTED);
997 return 1;
998 } else {
999 int err = SSL_get_error(bev_ssl->ssl, r);
1000 print_err(err);
1001 switch (err) {
1002 case SSL_ERROR_WANT_WRITE:
1003 if (!bev_ssl->underlying) {
1004 stop_reading(bev_ssl);
1005 return start_writing(bev_ssl);
1006 }
1007 return 0;
1008 case SSL_ERROR_WANT_READ:
1009 if (!bev_ssl->underlying) {
1010 stop_writing(bev_ssl);
1011 return start_reading(bev_ssl);
1012 }
1013 return 0;
1014 default:
1015 conn_closed(bev_ssl, err, r);
1016 return -1;
1017 }
1018 }
1019 }
1020
1021 static void
1022 be_openssl_handshakecb(struct bufferevent *bev_base, void *ctx)
1023 {
1024 struct bufferevent_openssl *bev_ssl = ctx;
1025 do_handshake(bev_ssl);/* XXX handle failure */
1026 }
1027
1028 static void
1029 be_openssl_handshakeeventcb(evutil_socket_t fd, short what, void *ptr)
1030 {
1031 struct bufferevent_openssl *bev_ssl = ptr;
1032
1033 _bufferevent_incref_and_lock(&bev_ssl->bev.bev);
1034 if (what & EV_TIMEOUT) {
1035 _bufferevent_run_eventcb(&bev_ssl->bev.bev, BEV_EVENT_TIMEOUT);
1036 } else
1037 do_handshake(bev_ssl);/* XXX handle failure */
1038 _bufferevent_decref_and_unlock(&bev_ssl->bev.bev);
1039 }
1040
1041 static int
1042 set_handshake_callbacks(struct bufferevent_openssl *bev_ssl, evutil_socket_t fd)
1043 {
1044 if (bev_ssl->underlying) {
1045 bufferevent_setcb(bev_ssl->underlying,
1046 be_openssl_handshakecb, be_openssl_handshakecb,
1047 be_openssl_eventcb,
1048 bev_ssl);
1049 return do_handshake(bev_ssl);
1050 } else {
1051 struct bufferevent *bev = &bev_ssl->bev.bev;
1052 int r1=0, r2=0;
1053 if (fd < 0 && bev_ssl->fd_is_set)
1054 fd = event_get_fd(&bev->ev_read);
1055 if (bev_ssl->fd_is_set) {
1056 event_del(&bev->ev_read);
1057 event_del(&bev->ev_write);
1058 }
1059 event_assign(&bev->ev_read, bev->ev_base, fd,
1060 EV_READ|EV_PERSIST, be_openssl_handshakeeventcb, bev_ssl);
1061 event_assign(&bev->ev_write, bev->ev_base, fd,
1062 EV_WRITE|EV_PERSIST, be_openssl_handshakeeventcb, bev_ssl);
1063 if (fd >= 0) {
1064 r1 = _bufferevent_add_event(&bev->ev_read, &bev->timeout_read);
1065 r2 = _bufferevent_add_event(&bev->ev_write, &bev->timeout_write);
1066 bev_ssl->fd_is_set = 1;
1067 }
1068 return (r1<0 || r2<0) ? -1 : 0;
1069 }
1070 }
1071
1072 int
1073 bufferevent_ssl_renegotiate(struct bufferevent *bev)
1074 {
1075 struct bufferevent_openssl *bev_ssl = upcast(bev);
1076 if (!bev_ssl)
1077 return -1;
1078 if (SSL_renegotiate(bev_ssl->ssl) < 0)
1079 return -1;
1080 bev_ssl->state = BUFFEREVENT_SSL_CONNECTING;
1081 if (set_handshake_callbacks(bev_ssl, -1) < 0)
1082 return -1;
1083 if (!bev_ssl->underlying)
1084 return do_handshake(bev_ssl);
1085 return 0;
1086 }
1087
1088 static void
1089 be_openssl_outbuf_cb(struct evbuffer *buf,
1090 const struct evbuffer_cb_info *cbinfo, void *arg)
1091 {
1092 struct bufferevent_openssl *bev_ssl = arg;
1093 int r = 0;
1094 /* XXX need to hold a reference here. */
1095
1096 if (cbinfo->n_added && bev_ssl->state == BUFFEREVENT_SSL_OPEN) {
1097 if (cbinfo->orig_size == 0)
1098 r = _bufferevent_add_event(&bev_ssl->bev.bev.ev_write,
1099 &bev_ssl->bev.bev.timeout_write);
1100 consider_writing(bev_ssl);
1101 }
1102 /* XXX Handle r < 0 */
1103 (void)r;
1104 }
1105
1106
1107 static int
1108 be_openssl_enable(struct bufferevent *bev, short events)
1109 {
1110 struct bufferevent_openssl *bev_ssl = upcast(bev);
1111 int r1 = 0, r2 = 0;
1112
1113 if (bev_ssl->state != BUFFEREVENT_SSL_OPEN)
1114 return 0;
1115
1116 if (events & EV_READ)
1117 r1 = start_reading(bev_ssl);
1118 if (events & EV_WRITE)
1119 r2 = start_writing(bev_ssl);
1120
1121 if (bev_ssl->underlying) {
1122 if (events & EV_READ)
1123 BEV_RESET_GENERIC_READ_TIMEOUT(bev);
1124 if (events & EV_WRITE)
1125 BEV_RESET_GENERIC_WRITE_TIMEOUT(bev);
1126
1127 if (events & EV_READ)
1128 consider_reading(bev_ssl);
1129 if (events & EV_WRITE)
1130 consider_writing(bev_ssl);
1131 }
1132 return (r1 < 0 || r2 < 0) ? -1 : 0;
1133 }
1134
1135 static int
1136 be_openssl_disable(struct bufferevent *bev, short events)
1137 {
1138 struct bufferevent_openssl *bev_ssl = upcast(bev);
1139 if (bev_ssl->state != BUFFEREVENT_SSL_OPEN)
1140 return 0;
1141
1142 if (events & EV_READ)
1143 stop_reading(bev_ssl);
1144 if (events & EV_WRITE)
1145 stop_writing(bev_ssl);
1146
1147 if (bev_ssl->underlying) {
1148 if (events & EV_READ)
1149 BEV_DEL_GENERIC_READ_TIMEOUT(bev);
1150 if (events & EV_WRITE)
1151 BEV_DEL_GENERIC_WRITE_TIMEOUT(bev);
1152 }
1153 return 0;
1154 }
1155
1156 static void
1157 be_openssl_destruct(struct bufferevent *bev)
1158 {
1159 struct bufferevent_openssl *bev_ssl = upcast(bev);
1160
1161 if (bev_ssl->underlying) {
1162 _bufferevent_del_generic_timeout_cbs(bev);
1163 } else {
1164 event_del(&bev->ev_read);
1165 event_del(&bev->ev_write);
1166 }
1167
1168 if (bev_ssl->bev.options & BEV_OPT_CLOSE_ON_FREE) {
1169 if (bev_ssl->underlying) {
1170 if (BEV_UPCAST(bev_ssl->underlying)->refcnt < 2) {
1171 event_warnx("BEV_OPT_CLOSE_ON_FREE set on an "
1172 "bufferevent with too few references");
1173 } else {
1174 bufferevent_free(bev_ssl->underlying);
1175 bev_ssl->underlying = NULL;
1176 }
1177 } else {
1178 evutil_socket_t fd = -1;
1179 BIO *bio = SSL_get_wbio(bev_ssl->ssl);
1180 if (bio)
1181 fd = BIO_get_fd(bio, NULL);
1182 if (fd >= 0)
1183 evutil_closesocket(fd);
1184 }
1185 SSL_free(bev_ssl->ssl);
1186 } else {
1187 if (bev_ssl->underlying) {
1188 if (bev_ssl->underlying->errorcb == be_openssl_eventcb)
1189 bufferevent_setcb(bev_ssl->underlying,
1190 NULL,NULL,NULL,NULL);
1191 bufferevent_unsuspend_read(bev_ssl->underlying,
1192 BEV_SUSPEND_FILT_READ);
1193 }
1194 }
1195 }
1196
1197 static int
1198 be_openssl_adj_timeouts(struct bufferevent *bev)
1199 {
1200 struct bufferevent_openssl *bev_ssl = upcast(bev);
1201
1202 if (bev_ssl->underlying)
1203 return _bufferevent_generic_adj_timeouts(bev);
1204 else {
1205 int r1=0, r2=0;
1206 if (event_pending(&bev->ev_read, EV_READ, NULL))
1207 r1 = _bufferevent_add_event(&bev->ev_read, &bev->timeout_read);
1208 if (event_pending(&bev->ev_write, EV_WRITE, NULL))
1209 r2 = _bufferevent_add_event(&bev->ev_write, &bev->timeout_write);
1210 return (r1<0 || r2<0) ? -1 : 0;
1211 }
1212 }
1213
1214 static int
1215 be_openssl_flush(struct bufferevent *bufev,
1216 short iotype, enum bufferevent_flush_mode mode)
1217 {
1218 /* XXXX Implement this. */
1219 return 0;
1220 }
1221
1222 static int
1223 be_openssl_ctrl(struct bufferevent *bev,
1224 enum bufferevent_ctrl_op op, union bufferevent_ctrl_data *data)
1225 {
1226 struct bufferevent_openssl *bev_ssl = upcast(bev);
1227 switch (op) {
1228 case BEV_CTRL_SET_FD:
1229 if (bev_ssl->underlying)
1230 return -1;
1231 {
1232 BIO *bio;
1233 bio = BIO_new_socket(data->fd, 0);
1234 SSL_set_bio(bev_ssl->ssl, bio, bio);
1235 bev_ssl->fd_is_set = 1;
1236 }
1237 if (bev_ssl->state == BUFFEREVENT_SSL_OPEN)
1238 return set_open_callbacks(bev_ssl, data->fd);
1239 else {
1240 return set_handshake_callbacks(bev_ssl, data->fd);
1241 }
1242 case BEV_CTRL_GET_FD:
1243 if (bev_ssl->underlying)
1244 return -1;
1245 if (!bev_ssl->fd_is_set)
1246 return -1;
1247 data->fd = event_get_fd(&bev->ev_read);
1248 return 0;
1249 case BEV_CTRL_GET_UNDERLYING:
1250 if (!bev_ssl->underlying)
1251 return -1;
1252 data->ptr = bev_ssl->underlying;
1253 return 0;
1254 case BEV_CTRL_CANCEL_ALL:
1255 default:
1256 return -1;
1257 }
1258 }
1259
1260 SSL *
1261 bufferevent_openssl_get_ssl(struct bufferevent *bufev)
1262 {
1263 struct bufferevent_openssl *bev_ssl = upcast(bufev);
1264 if (!bev_ssl)
1265 return NULL;
1266 return bev_ssl->ssl;
1267 }
1268
1269 static struct bufferevent *
1270 bufferevent_openssl_new_impl(struct event_base *base,
1271 struct bufferevent *underlying,
1272 evutil_socket_t fd,
1273 SSL *ssl,
1274 enum bufferevent_ssl_state state,
1275 int options)
1276 {
1277 struct bufferevent_openssl *bev_ssl = NULL;
1278 struct bufferevent_private *bev_p = NULL;
1279 int tmp_options = options & ~BEV_OPT_THREADSAFE;
1280
1281 if (underlying != NULL && fd >= 0)
1282 return NULL; /* Only one can be set. */
1283
1284 if (!(bev_ssl = mm_calloc(1, sizeof(struct bufferevent_openssl))))
1285 goto err;
1286
1287 bev_p = &bev_ssl->bev;
1288
1289 if (bufferevent_init_common(bev_p, base,
1290 &bufferevent_ops_openssl, tmp_options) < 0)
1291 goto err;
1292
1293 /* Don't explode if we decide to realloc a chunk we're writing from in
1294 * the output buffer. */
1295 SSL_set_mode(ssl, SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER);
1296
1297 bev_ssl->underlying = underlying;
1298 bev_ssl->ssl = ssl;
1299
1300 bev_ssl->outbuf_cb = evbuffer_add_cb(bev_p->bev.output,
1301 be_openssl_outbuf_cb, bev_ssl);
1302
1303 if (options & BEV_OPT_THREADSAFE)
1304 bufferevent_enable_locking(&bev_ssl->bev.bev, NULL);
1305
1306 if (underlying) {
1307 _bufferevent_init_generic_timeout_cbs(&bev_ssl->bev.bev);
1308 bufferevent_incref(underlying);
1309 }
1310
1311 bev_ssl->state = state;
1312 bev_ssl->last_write = -1;
1313
1314 init_bio_counts(bev_ssl);
1315
1316 switch (state) {
1317 case BUFFEREVENT_SSL_ACCEPTING:
1318 SSL_set_accept_state(bev_ssl->ssl);
1319 if (set_handshake_callbacks(bev_ssl, fd) < 0)
1320 goto err;
1321 break;
1322 case BUFFEREVENT_SSL_CONNECTING:
1323 SSL_set_connect_state(bev_ssl->ssl);
1324 if (set_handshake_callbacks(bev_ssl, fd) < 0)
1325 goto err;
1326 break;
1327 case BUFFEREVENT_SSL_OPEN:
1328 if (set_open_callbacks(bev_ssl, fd) < 0)
1329 goto err;
1330 break;
1331 default:
1332 goto err;
1333 }
1334
1335 if (underlying) {
1336 bufferevent_setwatermark(underlying, EV_READ, 0, 0);
1337 bufferevent_enable(underlying, EV_READ|EV_WRITE);
1338 if (state == BUFFEREVENT_SSL_OPEN)
1339 bufferevent_suspend_read(underlying,
1340 BEV_SUSPEND_FILT_READ);
1341 } else {
1342 bev_ssl->bev.bev.enabled = EV_READ|EV_WRITE;
1343 if (bev_ssl->fd_is_set) {
1344 if (state != BUFFEREVENT_SSL_OPEN)
1345 if (event_add(&bev_ssl->bev.bev.ev_read, NULL) < 0)
1346 goto err;
1347 if (event_add(&bev_ssl->bev.bev.ev_write, NULL) < 0)
1348 goto err;
1349 }
1350 }
1351
1352 return &bev_ssl->bev.bev;
1353 err:
1354 if (bev_ssl)
1355 bufferevent_free(&bev_ssl->bev.bev);
1356 return NULL;
1357 }
1358
1359 struct bufferevent *
1360 bufferevent_openssl_filter_new(struct event_base *base,
1361 struct bufferevent *underlying,
1362 SSL *ssl,
1363 enum bufferevent_ssl_state state,
1364 int options)
1365 {
1366 /* We don't tell the BIO to close the bufferevent; we do it ourselves
1367 * on be_openssl_destruct */
1368 int close_flag = 0; /* options & BEV_OPT_CLOSE_ON_FREE; */
1369 BIO *bio;
1370 if (!underlying)
1371 return NULL;
1372 if (!(bio = BIO_new_bufferevent(underlying, close_flag)))
1373 return NULL;
1374
1375 SSL_set_bio(ssl, bio, bio);
1376
1377 return bufferevent_openssl_new_impl(
1378 base, underlying, -1, ssl, state, options);
1379 }
1380
1381 struct bufferevent *
1382 bufferevent_openssl_socket_new(struct event_base *base,
1383 evutil_socket_t fd,
1384 SSL *ssl,
1385 enum bufferevent_ssl_state state,
1386 int options)
1387 {
1388 /* Does the SSL already have an fd? */
1389 BIO *bio = SSL_get_wbio(ssl);
1390 long have_fd = -1;
1391
1392 if (bio)
1393 have_fd = BIO_get_fd(bio, NULL);
1394
1395 if (have_fd >= 0) {
1396 /* The SSL is already configured with an fd. */
1397 if (fd < 0) {
1398 /* We should learn the fd from the SSL. */
1399 fd = (evutil_socket_t) have_fd;
1400 } else if (have_fd == (long)fd) {
1401 /* We already know the fd from the SSL; do nothing */
1402 } else {
1403 /* We specified an fd different from that of the SSL.
1404 This is probably an error on our part. Fail. */
1405 return NULL;
1406 }
1407 (void) BIO_set_close(bio, 0);
1408 } else {
1409 /* The SSL isn't configured with a BIO with an fd. */
1410 if (fd >= 0) {
1411 /* ... and we have an fd we want to use. */
1412 bio = BIO_new_socket(fd, 0);
1413 SSL_set_bio(ssl, bio, bio);
1414 } else {
1415 /* Leave the fd unset. */
1416 }
1417 }
1418
1419 return bufferevent_openssl_new_impl(
1420 base, NULL, fd, ssl, state, options);
1421 }
1422
1423 unsigned long
1424 bufferevent_get_openssl_error(struct bufferevent *bev)
1425 {
1426 unsigned long err = 0;
1427 struct bufferevent_openssl *bev_ssl;
1428 BEV_LOCK(bev);
1429 bev_ssl = upcast(bev);
1430 if (bev_ssl && bev_ssl->n_errors) {
1431 err = bev_ssl->errors[--bev_ssl->n_errors];
1432 }
1433 BEV_UNLOCK(bev);
1434 return err;
1435 }
Tomato firmware and modifications.